VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Cross-Site Request Forgery (CSRF)
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-12-11
CVE-2024-12004
The WPC Order Notes for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.2.
network
low complexity
CWE-352
6.1
6.1
2024-12-09
CVE-2024-12349
Cross-Site Request Forgery (CSRF) vulnerability in Jwillber Jfinalcms 1.0
A vulnerability was found in JFinalCMS 1.0.
network
low complexity
jwillber
CWE-352
8.8
8.8
2024-12-07
CVE-2024-12115
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.5.4.
network
low complexity
CWE-352
4.3
4.3
2024-12-06
CVE-2024-11336
The Clickbank WordPress Plugin (Storefront) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.
network
low complexity
CWE-352
6.1
6.1
2024-12-06
CVE-2024-11444
The CLUEVO LMS, E-Learning Platform plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.13.2.
network
low complexity
CWE-352
4.3
4.3
2024-12-06
CVE-2024-12003
The WP System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1.
network
low complexity
CWE-352
6.1
6.1
2024-12-05
CVE-2024-11341
The Simple Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.
network
low complexity
CWE-352
4.3
4.3
2024-12-04
CVE-2024-10832
The Posti Shipping plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.10.3.
network
low complexity
CWE-352
6.1
6.1
2024-12-04
CVE-2024-11813
The Pulsating Chat Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6.
network
low complexity
CWE-352
6.1
6.1
2024-12-03
CVE-2024-41776
Cross-Site Request Forgery (CSRF) vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm
CWE-352
6.5
6.5
«
Previous
1
2
...
8
9
10
(current)
11
12
...
341
342
»
Next